This guide will show you how to use Microsoft Defender to block websites and monitor web activity in your business environment. Learn how to prevent staff from accessing unauthorized websites and track web usage across your organization.
Prerequisites
- One of the following licenses:
- Microsoft 365 Business Premium
- Microsoft Defender for Business (standalone)
- Microsoft 365 E3 + Microsoft Defender for Endpoint P1
- Microsoft 365 E5
- Access to security.microsoft.com or security.microsoft.com/endpoints
- Global Administrator or Security Administrator role
Important Notes
- All devices must be Azure AD joined or Hybrid Azure AD joined
- Microsoft Intune enrollment is required for all devices
- Microsoft Defender Antivirus must be enabled and running
- There may be up to 2 hours delay in reporting data
- Web protection policies have a maximum limit of URLs that can be blocked
Step 1: Access Microsoft Defender Security Center
- Navigate to security.microsoft.com
- Sign in with your admin credentials
Step 2: Device Registration
For your first device:
- Navigate to the Devices tab
- Click "Add a device"
- Select your operating system
- Follow the on-screen instructions
Note: Additional devices will require Azure Intune setup.
Step 3: Configure Web Filtering
- Go to Settings Endpoint Web filtering
- Enable web filtering and Custom network indicators
Creating a Web Filtering Policy
- Navigate to Settings Endpoint Web filtering
- Click "Add service/policy"
- Name your policy (e.g., "Block Streaming Services")
- Select categories to block (e.g., streaming media under high bandwidth)
- Define the scope (which devices the policy affects)
Step 4: Block Specific Websites
- Go to Settings Endpoint Indicators URLs/Domains
- Click "Add an item"
- Enter the URL or domain to block (e.g., www.netflix.com)
- Choose an action:
- Block: Prevent access completely
- Audit: Monitor access without user notification
- Configure additional settings as needed
- Set the scope for affected devices
Step 5: Monitoring Web Activity
- Access the Devices tab
- Select the device you want to investigate
- Review detailed information including:
- Website access duration
- Device details (IP address, model, manufacturer)
- Usage patterns
Advanced Monitoring Options
- Access detailed reports under Reports Web Protection
- Use Advanced Hunting queries for detailed investigation
- Export reports for compliance and auditing purposes
- Set up custom alerts for specific websites or usage patterns
Additional Resources
For more detailed information, consult these Microsoft documentation resources:
Share Your Experience
If you've encountered this issue and followed the steps outlined in this article, we'd love to hear from you. Please leave a comment below to share whether this solution helped resolve the problem. Additionally, if you found a different method that worked, we encourage you to share that as well. Your feedback is invaluable in helping us and others who may face similar issues.
Need Further Assistance?
If you're still facing issues or would like personalized guidance, we're here to help. Check out our dedicated support plans at IT Solver Support Plans for expert assistance tailored to your needs.
Comments
0 comments
Please sign in to leave a comment.